Security update process without CVEs
Eric H. Christensen
sparks at fedoraproject.org
Tue Jan 21 21:31:10 UTC 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
On Tue, Jan 21, 2014 at 04:26:19PM -0500, Dan Scott wrote:
> I tried following
> https://fedoraproject.org/wiki/Security_Tracking_Bugs?rd=Security/TrackingBugs
> but it appears to depend on waiting on a CVE, which upstream did not
> yet have... but upstream had already pushed the new release to CPAN.
You may be able to request the CVE yourself. I'm trying to contact the guy that handles those things for FOSS but a netsplit is keeping me from talking to him at the moment.
- -- Eric
- --------------------------------------------------
Eric "Sparks" Christensen
Fedora Project
sparks at fedoraproject.org - sparks at redhat.com
097C 82C3 52DF C64A 50C2 E3A3 8076 ABDE 024B B3D1
- --------------------------------------------------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQGcBAEBCgAGBQJS3uccAAoJEB/kgVGp2CYvCuEL/3zXFKhsuD/0lFnejfugTw/P
9Lb+hV2BP9fDmcMZR1hW+feY8Wl8T/+nWfF3/GzTqLRn4HbfUMt3L86vo3piny1T
Zzu/hPvDkvmOeMFdApko3+gyEF+ChUgWvtauj+yJ+/amLF6xC4btepH9RReBmesa
cflhUxz2G7BH3hwQgt3sqNP9qbk58l7kXcFSAM6n7KT3PHoJv2JuJ+RL6g3bnGfh
5LgRZuCTqh821p0jMjq+Mps2P1dfCsyMLv3LjYR1noLGJlAVAMo9ulAD5j9ABSLc
/z8O/0ZTDqcDQDV8WyhN2j70p/uhSy1XJ0IXVYskldmrnOQoT6y0bwMpD/zCG5jZ
dGXpsepk6zud+0QVgvirK0/Dnidb51MU6n9zwSwK76rRgtTNUHa52D5VZ2EBgyDU
7pSfO95fzDXPnpD0VDeYwE2d3Y+sdCHnWIxyVyWxVSR0d1klPQ0+jXya1SgdThc1
R3R7yog5fne9P71qFndaZh9dGKihSPerBDPoSIPhCw==
=LVnb
-----END PGP SIGNATURE-----
More information about the devel
mailing list